pdp (architect) wrote: > http://www.gnucitizen.org/blog/firebug-goes-evil > > There is critical vulnerability in Firefox/Firebug which allows > attackers to inject code inside the browser chrome. Good find. > I recommend to disable Firebug for now until the issue is fixed. Firebug 1.03 is now available and fixes this vulnerability. https://addons.mozilla.org/en-US/firefox/addon/1843 Firebug is disabled by default and is probably best left that way. It can be easily enabled per-site when you're actively developing or hacking. -Dan Veditz
